Performance issues
John Hascall
john at iastate.edu
Sat Sep 15 18:31:19 UTC 2007
Is this happening about every hour?
We've seen this when named decides it is cleaning time.
http://www.zytrax.com/books/dns/ch7/periodic.html#cleaning-interval
John
> Hi,
>
> We are running bind 9.3.3 on 1 hidden master and 2 slaves with 2GB
> Ram and "old" 2GHz Xeon. We have 150 queries/s average on each slave
> with 300 queries/s in max peak. On these servers we have about 150
> "lights" zones with Authority. We have done 2 views, one for our
> client (about 20'000 in peak) which is open for recursives queries
> and one for external which provide only the zones we have authority
> on (no cache for it).
> For example of queries repartition, at 20h00 yesterday we have
> about : 5 failures/s, 70 recursives/s, 40 nxdomain/s, 5 nxrrset/s and
> 150 success/s...
>
> We have some performance issue on the slaves. Sometimes the queries
> on one of our authority zones (on one A record) can take some seconds
> to be executed ! (in average it takes less than 8ms)... This
> performance issues are not linked to load issues on server. We are
> monitoring load (average load is 0,1 per minute), packets (average is
> 150p/s), bandwith (average is 20kB/s), processus, ping time, ... The
> bind performance issues can occure when we have only 150 queries/s
> with a low load... we see nothing strange in the stats (like tcp or
> udp explosions, or very high number of packets)...
>
> Are these issues "normal"? We are thinking about a solution with 2
> front servers providing only cache services (open to our clients
> only, for recursives) and with 2 slaves and 1 master dedicated to the
> authoritatives zones (nor recursive, hidden to our clients). Could
> this be a real solution for better performances?
>
> Regards
>
> David
>
> ##### some of our named.conf #####
> # blacklist contains only 1 IP
> # recursive is quite high... because
> # sometimes 1000 recursives is not enough
> ##############################
> options {
> directory "/etc/namedb";
> pid-file "/var/run/named/pid";
> dump-file "/var/dump/named_dump.db";
> statistics-file "/var/stats/named.stats";
> version "None of your business";
> // we accept transfers only to our slaves
> allow-transfer {
> key dns3-dns2.; # Our slave
> key dns3-dns1.; # Our slave
> };
> recursive-clients 2500;
> blackhole { blacklist; };
> };
>
> view "internal-in" in {
> match-clients { our_clients; };
> recursion yes;
> additional-from-auth yes;
> additional-from-cache yes;
> include "zones.conf";
> };
>
> view "external-in" in {
> match-clients { any; };
> recursion no;
> additional-from-auth no;
> additional-from-cache no;
> include "zones.conf";
> };
>
>
More information about the bind-users
mailing list